Company Overview

300+ media companies as clients, $40+ billion in revenue processed, 25,000+ worldwide users

Operative is a revenue accelerant for media companies around the world. No other software company in AdTech space, brings a comparable depth of experience to create truly innovative software that performs across all platforms, revenue models and business units. We are a SAAS (Software as a Service) platform which helps clients manage advertisements both in the linear (TV) and digital space. We have been in the market for over two decades and have 1100+ employees with 12 offices spread across the globe. Operative is proud to play a pivotal role in the way advertising is bought, sold and managed across media industry.

Role Summary:

We are looking for Information Security Engineer who will serve as first line of defence in our security operations team. This role involves monitoring and responding security alerts and incidents generated from Managed Detection and Response (MDR) and Extended Detection and Response (XDR) to safeguard organizations information and assets. This role also involves creation of comprehensive incident reports and contribute to the development and maintenance of incident response playbooks.

Responsibilities:

· Monitor Security Alerts: Analyse and respond to security incidents escalated by MDR and XDR. (TrendMicro, Alert Logic), Coordinate containment, eradication, and recovery efforts during security events. Perform root cause analysis to prevent recurrence of incidents.

· Triage: Assess the legitimacy and severity of detected anomalies, distinguishing between false positives and genuine threats to ensure efficient allocation of response resources.

· Analysis: Analyse alerts with contextual information, including Indicators of Compromise (IoCs) and threat intelligence, to facilitate comprehensive analysis and response to determine their impact and root cause. This involves examining affected systems, analyse system logs, and other data sources to identify patterns indicative of malicious activity or policy violations. Recognizing anomalies enables early detection of potential security breaches.

· Incident Response: Communicate findings and recommendations to relevant stakeholders. Document incident details, response actions, and outcomes in comprehensive reports.

· Collaboration and Communication: Work closely with internal teams and external vendors to manage incidents effectively. Participate in post-incident reviews and contribute to continuous improvement initiatives.

· Documentation and Reporting: Create detailed reports that document analysis findings. Maintain accurate records of incidents and analyses to support future investigations and compliance requirements.

· Evaluating Risk Scores: By analysing risk scores generated by security tools, assess the severity and potential impact of identified vulnerabilities, communicate to the internal stakeholders for remediation efforts.

· Developing Automated Response Playbooks: Design and implement playbooks that outline automated workflows for detecting, analysing, and responding to common security incidents, ensuring consistent and efficient handling of threats.

Must Have Skills:

· Familiarity with MDR and XDR solutions like TrendMicro, Alert logic and their integration into security operations.

· Good understanding of networking principles and AWS services.

· Proficiency in log analysis for identifying security threats and IOCs

· Excellent written and verbal communication skills.

· Ability to develop clear and concise documentation, including incident reports and playbooks.

· Knowledge of security frameworks and best practices.

· Proficiency in scripting languages commonly used for automation (e.g., Python, PowerShell).

Working Conditions: This role may require participation in an on-call rotation and the ability to respond to security incidents during non-standard hours.

Why join us ?

• Operative is a technology-oriented product organization that believes in empowering its people
• We use the latest tech stack and empower our engineers to learn, work and ideate on new technologies available in the market
• We provide flexi work schedules and remote working to encourage work life balance
• We are an equal opportunities employer and recruit based on the experience and skill set.
• We offer a competitive salary and benefits package

Please apply online and upload your CV.

“Operative is a merit-first, equal opportunity employer; diverse applications are encouraged.”

Operative cares about your privacy and protecting your data. By submitting an application for a position with Operative, you acknowledge that you have read the following and consent to how Operative treats your data: 1) the Candidate Privacy Policy available at https://www.operative.com/candidate-privacy-notice/ (or if you are a candidate from Israel the Candidate Privacy Notice (Israel), available at https://www.operative.com/candidate-privacy-notice-israel/, and 2) the Candidate Notice for Data Transfer and Retention available at https://www.operative.com/candidate-notice/.